ForgeRock Identity Platform
Does not apply to Identity Cloud
FAQ: UMA in AM
The purpose of this FAQ is to provide answers to commonly asked questions regarding User-Managed Access (UMA) in AM.
1 reader recommends this article
Frequently asked questions
- Q. Can I share UMA resources with a group?
- Q. Can a resource provider use the introspect endpoint to check tokens received by clients?
Q. Can I share UMA resources with a group?
A. No, UMA sharing in AM is based on user-to-user sharing, meaning userA can share something with userB. See UMA use case for further information. Additionally, all users need to be valid users in AM.
Q. Can a resource provider use the introspect endpoint to check tokens received by clients?
A. Yes, this is possible. See RFC 7662: OAuth 2.0 Token Introspection for further information about the applicable standard.
Related Issue Tracker IDs